How to exclude characters from generation values in Attribute Polices

Summary: This article contains step-by-step instructions on how to exclude characters from generation values in Attribute Polices.

Applies to: Cayosoft Administrator 7.2.0 or later.

When user accounts are getting created and have special characters in them (apostrophe, dash), these characters usually need to be excluded from generated values of an object attributes To do this, you need to use the Expression Builder for Generated value in Attribute Policy.

If the Generated value consists of several object attributes you may need to exclude special characters from each of them or only from some of them. So, you need to configure the Expression Builder for each attribute separately.

1. In the Cayosoft Administrator console, navigate to Configuration > Web Portal > Attribute Policies.

2. Click Add Attribute Policy.

3. Enter a name for the New policy.

4. Expand the Policy Details of the new policy.

5. Click Add scope at the bottom right of the Policy Scope section.

6. In the Specify Policy Scope dialog, do the following:

   1. Select the Active Directory Admin Unit in the All Admin Units;

   2. Select the AD Users Web Query in the All Web Queries;

   3. Select New User in the All Actions;

   4. Click Ok.

7. Click the newly created scope to select it.

8. In the Attribute policy settings section, select the User logon name attribute.

9. Click Edit Policy.

10. Check the Generation value.

11. Click ... to open Expression Builder.

12. Add the GivenName token.

13. Set Take first 3 letters.

14. Click Ok.

15. Add the SurName token.

16. Set Take first 3 letters.

17. Open the Advanced section.

18. In the Exclude characters, select Characters prohibited for SamAccountName/UserPrincipalName.

19. Check Exclude additional characters and add '-'.

20. Click OK

21. Save changes.

NOTE: Excluded characters must be specified without delimiters. Uppercase and lowercase letters are treated as distinct (case-sensitive).